Why a ClickOnce Trusted Application don't failed when I change my Code groups Security params ???

Thread view:

Enable EMail Alerts

Start New Thread

Thread rating:

azerty - 25 Jan 2007 17:50 GMT

Hello !

I develop an .NET C# 2.0 test application witch requires SecurityPermission
for accept unmanaged calls.

>> If I Execute this application from c:\ ... Application work fines ! ok
>> ...

with mscorcfg.msc application :

>> If I change the association between code group "My Computer Zone" and
>> "FullTrust" PermissionSet to "Nothing"
>> I Execute this application from c:\ ... Application dont work ! perfect !
>> is normal ...
>> I Repeat the "Nothing" Action on all Code group of My Computer strategie
>> (LocalIntranet, Internet, Restricted, etc. ...)

>>> If I deploy my Application With ClickOnce from an intranet Server (after
>>> specify the correct permission on Security Windows of Visual Studio
>>> 2005)

>> My ClickOnce application work every time !!!

So, my question is :
Why an ClickOnce application works fine even if Code Access Security of my
competer said "No, this application will not work fine ..."

thanks a lot for your help !!!

Best regard

Reply to this Message

Dominick Baier - 26 Jan 2007 06:22 GMT

ClickOnce apps use the sandboxing API introduced in 2.0 - this API is independent
from the CAS policies...

look through Shawn's blog for more info

blogs.msdn.com/shawnfa

-----
Dominick Baier (http://www.leastprivilege.com)

> Hello !
>
[quoted text clipped - 28 lines]
>
> Best regard

Reply to this Message

Why a ClickOnce Trusted Application don't failed when I change my Code groups Security params ???

Free Magazines